Kj^SS MAIL NO. EL404932405US 

METHOD, ARTICLE AND APPARATUS FOR REGISTERING REGISTRANTS, 

SUCH AS VOTER REGISTRANTS 

IHNICAL FIELD 

This invention is generally related to registering registrants such as voter or 
5 polling registrants, and more particularly to the use of public/private key encryption 
during the registration process. 

BACKGROUND OF THE INVENTION 

The Internet is increasingly being used to conduct a variety of activities, 
including research, communication or document exchange, and "electronic commerce," in 

10 part, because it facilitates electronic communications with large databases, between 
individuals, and between vendors and purchasers. The Internet comprises a vast number 
of computers and computer networks interconnected through communication channels. 
One individual can use a personal computer to connect via the Internet to another's 
computer. Although many of today's commercial transactions could be performed 

15 electronically, the acceptance and wide-spread use of electronic commerce depends, in 
large part, upon the ease-of-use of conducting such electronic commerce or other 
activities and on the verifiability of the transaction. For example, if electronic commerce 
can be easily conducted, then even the novice computer user will choose to engage in 
such activities. Therefore, it is important that techniques be developed to facilitate 

20 conducting such activities electronically. 

The Internet facilitates conducting activities electronically, in part, because 
it uses standardized techniques for exchanging information. Many standards have been 
established for exchanging information over the Internet, such as electronic mail, Gopher, 
and the World Wide Web ("WWW"). The WWW service allows a server computer 

25 system (/.e., web server or web site) to send graphical web pages of information to a 
remote client computer system. The remote client computer system can then display the 
web pages. Each resource (e.g., computer or web page) of the WWW is uniquely 
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identifiable by a Uniform Resource Locator ("URL"). To view a specific web page, a 
client computer system specifies the URL for that web page in a request (e.g., a 
HyperText Transfer Protocol ("HTTP") request). The request is forwarded to the web 
server that supports that web page. When that web server receives the request, it sends 

5 the requested web page to the client computer system. When the client computer system 
receives the web page, it typically displays the web page using a browser. A browser is 
typically a special-purpose application program for requesting and displaying web pages. 

Currently, web pages are often defined using HyperText Markup Language 
("HTML") although other standards are on the horizon. HTML provides a standard set of 

10 tags that defines how a web page is to be displayed. When a user makes a request to the 
browser to display a web page, the browser sends the request to the server computer 
system to transfer to the client computer system an HTML document that defines the web 
page. When the requested HTML document is received by the client computer system, 
the browser displays the web page as defined by the HTML document. The HTML 

15 document contains various tags that control the display of text, graphics, controls, and 
other features. The HTML document may contain URLs of other web pages available on 
that server computer system or on other server computer systems. 

The World Wide Web portion of the Internet is especially conducive to 
conducting electronic commerce, and a host of other activities that individuals have 

20 previously performed manually or over the phone. One activity that has been difficult to 
transfer to the Internet or Word Wide Web has been voting. An electronic voting scheme 
must ensure the privacy of each voter, as well as provide security to prevent voting fraud. 
Voter registration has traditionally provided some measure of protection against voter 
fraud. Typically, conventional voting schemes employ a two step process. First, the 

25 voter registers, providing the voter's signature to a registrar. Second, the voter signs in at 
the polls, or signs an envelope enclosing a ballot, allowing the voter's signature to later 
be compared to the signature of the registrant. As with many electronic commerce 
techniques, an electronic voting scheme must be easy for voters to use and access and 
subject to strict verification requirements. To date, the inventors are unaware of any 

30 system that fulfills these requirements. 
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SUMMARY OF THE INVENTION 



Under one aspect of the invention, a registrant submits a public key of a 
public/private key pair and identifying information to a registrar. The registrar 
determines whether the registrant is eligible based on the provided identifying 
5 information. The registrar digitally signs the public keys of eligible registrants and 
forwards the signed public keys to an authenticating authority for use in authenticating 
the source of the encrypted voting information or electronic ballots submitted by the 
registrant. 

Under another aspect of the invention, a registrant produces a hash card 

10 including a hash of a public key of the registrant's public/private key pair. The registrant 
physically signs and submits the hash card to a registrar via a communications channel 
such as a common courier. The registrant then submits its public key to the registrar 
electronically. If the hash corresponds to the submitted public key, the registrar digitally 
signs the public key and forwards the digitally signed public key to an authenticating 

15 authority for use in authenticating the source of the encrypted voting information or 
electronic ballots submitted by the registrant. 

Under a further aspect of the invention, a registrar identifies a registrant in- 
person, and provides the registrant with a private key of a public/private key pair in a 
secure manner, such as on removable media. The registrar forwards the digitally signed 

20 public key to an authenticating authority for use in authenticating the source of the 
encrypted voting information or electronic ballots submitted by the registrant. 

Under yet another aspect of the invention, a registrant produces a hash card 
including a hash of a public key of the registrant's public/private key pair. The registrant 
signs and submits the hash card to the registrar in-person. The registrant electronically 

25 submits the public key to a registrar. The registrar digitally signs the public key if the 
hash corresponds to the electronically submitted public key. The registrar forwards the 
digitally signed public key to an authenticating authority for use in authenticating the 
source of the encrypted voting information or electronic ballots submitted by the 
registrant. 
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BRIEF DESCRIPTION OF THE DRAWINGS 



In the drawings, identical reference numbers identify similar elements or 
acts. The sizes and relative positions of elements in the drawings are not necessarily 
drawn to scale. For example, the shapes of various elements and angles are not drawn to 
5 scale, and some of these elements are arbitrarily enlarged and positioned to improve 
drawing legibility. Further, the particular shapes of the elements as drawn, are not 
intended to convey any information regarding the actual shape of the particular elements, 
and have been solely selected for ease of recognition in the drawings. 

Figure 1 is a block diagram illustrating an environment for use with an 
10 embodiment of the invention. 

Figure 2 is a flow diagram of a first method of registering registrants where 
a registrant electronically submits identifying information and a public key of a 
public/private key pair to a registrar who determines a registrant's eligibility based on 
matches and duplication in identifying data. 
15 Figure 3 is a flow diagram of a second method of registering registrants 

where a registrant transmits a hash of a public key and signature to the registrar via 
courier, and transmits a public key electronically to the registrar. 

Figure 4 is a flow diagram of a third method of registering registrants where 
a registrar verifies an identity of a registrant in-person and produces a public/private key 
20 pair for the verified registrant. 

Figure 5 is a flow diagram of a fourth method of registering registrants 
where a registrant electronically submits a public key to a registrar, and submits a hash of 
a public key and signature to the registrar in-person. 

DETAILED DESCRIPTION 

25 In the following description, certain specific details are set forth in order to 

provide a through understanding of various embodiments of the invention. However, one 
skilled in the art will understand that the invention may be practiced without these details. 
In other instances, well-known structures associated with computers, networks and 
internet servers and clients have not been shown or described in detail to avoid 

30 unnecessarily obscuring descriptions of the embodiments of the invention. 
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Unless the context requires otherwise, throughout the specification and 
claims which follow, the word "comprise" and variations thereof, such as, "comprises" 
and "comprising" are to be construed in an open, inclusive sense, that is as "including, 
but not limited to." 

5 The headings provided herein are for convenience only and do not interpret 

the scope of meaning of the claimed invention. 

Some of the detailed description provided herein is explicitly disclosed in 
the commonly assigned U.S. Provisional Patent Application Serial No. 60/149,621, filed 
August 16, 1999; much of the additional material will be recognized by those skilled in 

10 the relevant art as being inherent in the detailed description provided in the provisional 
patent application, or well known to those skilled in the relevant art. Those skilled in the 
relevant art can readily implement aspects of the invention based on the detailed 
description provided in the provisional patent application. 

Voter Authentication Background 

15 For ease of presentation, the discussion herein employs the specific 

example of voter registration in illustrating the more general concept of public/private key 
encryption applied to practical registration systems. In the illustrated examples, a 
registrant corresponds to a voter, a registrar corresponds to an organization conducting 
the election (e.g., municipality, state, county, association, club) and/or its employees and 

20 agents, and an authenticating authority corresponds to the entity that collects and tallies 
the votes. It is noted at the outset that the authenticating authority can be a third party 
individual, organization or other entity. Alternatively, the authenticating authority can be 
the registrar or a component of the registrar. While the illustrated examples employ 
election based scenarios, the registration systems are applicable in other contexts, such as 

25 for polling, licensing, and conducting lotteries or contests. Thus, the embodiments 
selected for illustration should not be considered as limiting. 

The registration systems illustrated herein provide each eligible registrant a 
method of obtaining a public/private key pair which meets predefined format and security 
specifications of the registrar and/or authenticating authority. In addition, it requires that 

30 the public key of each eligible registrant be distributed to the organization administering 
the registration (i.e., "registrar"), and that the organization has maintained a record of 
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each eligible registrant's public key. The registrar or authenticating authority can provide 
software that allows each voter to generate a public/private key pair on his own computer, 
hence maintaining a high level of security and privacy. The public key can be distributed 
to the authenticating authority by almost any means since it is intended to be "public." 
5 Since the public/private key pair generation software is universally available, the 
protocols setout herein must be implemented to protect the organization (e.g., governing 
body) from accepting and recording public keys for prospective registrants that have been 
generated by some illegitimate source. Under these circumstances, the masquerader has, 
for these purposes, assumed the identity of someone else. Without these protocols, the 

10 organization can only assure that votes credited to a person on their list of eligible voters 
are counted in the final tally, but cannot ensure that the source of each vote is, in fact, the 
voter to whom it is credited. 

The task of properly identifying the prospective registrant and recording the 
public key of each prospective voter registrant is called the registration process. Each 

15 organization or governing body must complete this process at least once for each of its 
eligible registrants (e.g., voters). Moreover, except under special circumstances, for 
example, when an eligible voter has lost his private key, or feels that it has been 
compromised, the registration process need be completed only once for each eligible 
voter. (Subsequent elections can reuse the same key pairs.) Four methods or protocols of 

20 conducting the registration process are presented herein, in order to let each organization 
strike a balance between security and convenience which it feels best suits its needs. 
They are presented in Figures 2-5, in order of increasing security and decreasing 
convenience, respectively. 

It is further noted that the protocols described below all assume that the 

25 voter generates the public/private key pair using a verified program distributed by the 
registrar and/or authenticating authority. The problem of assuring use of a verified 
program is the considered the Key Generator Distribution Problem, which can be 
addressed by distributing the public/private key pair generation software on secure media. 

Environment 

30 Figure 1 and the following discussion provide a brief, general description of 

a suitable computing environment in which aspects of the invention can be implemented. 
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Although not required, embodiments of the invention will be described in the general 
context of computer-executable instructions, such as routines executed by a general- 
purpose computer, such as a personal computer or web server. Those skilled in the 
relevant art will appreciate that aspects of the invention (such as for small elections) can 
5 be practiced with other computer system configurations, including Internet appliances, 
hand-held devices, multiprocessor systems, microprocessor-based or programmable 
consumer electronics, network PCs, mini computers, cell phones, mainframe computers, 
and the like. Aspects of the invention can be embodied in a special purpose computer or 
data processor that is specifically programmed, configured or constructed to perform one 

10 or more of the computer-executable instructions explained herein. The invention can also 
be practiced in distributed computing environments where tasks or modules are 
performed by remote processing devices, which are linked through a communications 
network, such as a Local Area Network (LAN), Wide Area Network (WAN), and the 
Internet. In a distributed computing environment, program modules or sub-routines may 

15 be located in both local and remote memory storage devices. Thus, the invention is not 
limited to the World Wide Web or the Internet. 

Unless described otherwise, the construction and operation of the various 
blocks shown in Figure 1 are of conventional design. As a result, such blocks need not be 
described in further detail herein, as they will be readily understood by those skilled in 

20 the relevant art. 

Referring to Figure 1, a suitable environment of system 100 includes one or 
more voter or client computers 102, each of which includes a browser program module 
104 that permits the computer to access and exchange data with the Internet, including 
web sites within the World Wide Web portion 106 of the Internet. The voter computers 

25 102 may include one or more central processing units or other logic processing circuitry, 
memory, input devices (e.g., keyboards and pointing devices), output devices (e.g., 
display devices and printers), and storage devices (e.g., fixed, floppy, and optical disk 
drives), all well known but not shown in Figure 1. The voter computers 102 may also 
include other program modules, such as an operating system, one or more application 

30 programs (e.g., word processing or spread sheet applications), and the like. Additionally, 
the voter computers can include a public/private key pair generation program module 105. 
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As shown in Figure 1, there are number of voter computers 102, representing voters 1, 
2 9 3...N. 

An authenticating authority's server computer system 108, coupled to the 
Internet or World Wide Web ("Web") 106, performs much or all of the ballot collection, 
5 storing and other processes. A database 110, coupled to the server computer 108, stores 
much of the web pages and data (including ballots) exchanged between the voter 
computers 102, one or more voting poll computers 112 and the server computer 108. The 
voting poll computer 112 is a personal computer, server computer, mini-computer, or the 
like, positioned at a public voting location to permit members of the public, or voters who 

10 may not have ready access to computers coupled to the Internet 106, to electronically 
vote under the system described herein. Thus, the voter computers 102 may be 
positioned at individual voter's homes, where one or more voting poll computers 112 are 
located publicly or otherwise accessible to voters during a public election. The voting 
poll computer 112 may include a local area network (LAN) having one server computer 

15 and several client computers or voter terminals coupled thereto via the LAN to thereby 
permit several voters to vote simultaneously or in parallel. 

The authenticating authority's server computer 108 includes a server engine 
120, a web page management component 122, a database management component 124, as 
well as other components. The server engine 120 performs, in addition to standard 

20 functionality, performs one or more electronic voting protocols, such as the protocols 

described in U.S. Patent Application No. , filed March 24, 2000, entitled 

"Multi-way Election Method and Apparatus," and assigned to the same assignee as this 
invention. Thus, the server engine 120 may perform all necessary ballot transmission to 
authorized voters, ballot collection, verifying ballots (e.g., checking digital signatures and 

25 passing verification of included proofs of validity in ballots), vote aggregation, ballot 
decryption and/or vote tabulation. 

The web page component 122 handles creation and display or routing of 
web pages such as an electronic ballot box web page. Voters and users access the server 
computer 108 by means of a URL associated therewith, such as http:Wwww.votehere.net, 

30 or a URL associated with the election, such as a URL for a municipality. The 
municipality may host or operate the server computer system 108 directly as the 
authenticating authority, or automatically forward such received electronic ballots to a 
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third party vote authenticating authority who may operate the server computer system. 
The URL, or any link or address noted herein, can be any resource locator. 

The web page management process 122 and server computer 108 may have 
secure sections or pages that may only be accessed by authorized people, such as 
5 authorized voters or system administrators. The server computer 108 may employ a 
secure socket layer ("SSL") and tokens or cookies to authenticate such users. Indeed, for 
small elections, or those where the probability of fraud is low (or results of fraud are 
relatively inconsequential), the system 100 may employ such simple network security 
measures for gathering and storing votes as explained below, rather than employing 

10 complex electronic encrypted ballots, as described in the above-noted patent application. 
Methods of authenticating users (such as through the use of passwords), establishing 
secure transmission connections, and providing secure servers and web pages are known 
to those skilled in the relevant art. 

One or more registrar's server computer systems 1 14 are also coupled to the 

15 authenticating authority's server computer system 108 and the voter or client computers 
102 via the Internet 106. The registrar's server computer system 114 performs much or 
all of the registration process, verifying and registering registrants (e.g., voters), digitally 
signing the registrant's public keys and passing the digitally signed public keys of eligible 
registrants to the authenticating authority's server computer system 108. A database 115, 

20 coupled to the registrar's server computer system 114, stores many of the web pages and 
data exchanged between the registrar's server computer 114, the voter computers 102 and 
the authenticating authority's server computer 108. 

The registrar's server computer 114 includes a server engine 130, a web 
page management component 132, a database management component 134, as well as 

25 other components. The server engine 130 may perform, in addition to standard 
functionality, one or more registration protocols, such as the registration protocols 
described herein. 

The web page component 132 handles creation and display or routing of 
web pages such as an electronic ballot box web page. Voters and users access the 
30 registrar's server computer 114 by means of a URL associated therewith, such as 
http:Wwww.votehere.net, or a URL associated with the election, such as a URL for a 
municipality. The municipality may host or operate the registrar's server computer 
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system 114 directly as the authenticating authority, or automatically forward such 
received electronic ballots to a third party authenticating authority who may operate the 
server computer system. The URL, or any link or address noted herein, can be any 
resource locator. 

The web page management process 132 and registrar's server computer 114 
may have secure sections or pages that may only be accessed by authorized people, such 
as authorized voters or system administrators. The registrar's server computer 114 may 
employ a secure socket layer ("SSL") and tokens or cookies to authenticate such users. 

Under an alternative embodiment, the system 100 may be used in the 
context of a private election, such as the election of corporate officers or board members. 
Under this embodiment, the voter computers 102 may be laptops or desktop computers of 
shareholders, and the voting poll computer 112 can be one or more computers positioned 
within the company (e.g., in the lobby) of the company performing the election. Thus, 
shareholders may visit the company to access the voting poll computer 112 to register 
and/or cast their votes. Under another alternative embodiment, the system 100 may be 
used in the context of a market survey or an opinion poll where the entity commissioning 
the survey or poll desires the data to be collected from a particular demographic segment 
of the public. The registration process can ensure the demographic requirement is 
satisfied while maintaining the anonymity of the respondents. Under yet an alternative 
embodiment, the system 100 may be used in the context of a lottery or contest by 
controlling registration for the lottery or contest. The registration process can ensure that 
contestants meet certain eligibility criteria such as age or residency requirements, while 
maintaining anonymity. In yet a further alternative embodiment, the system 100 can be 
used in a licensing context, for example, licensing individuals, cars, boats or other items. 

Remote Electronic Registration 

Figure 2 shows a method of remote electronic registration 200. The method 
is more convenient for the registrant than the other illustrated methods, but can be less 
secure. In Figures 2-5, the flow sequence is generally from the top of the page to the 
bottom of the page, although the order of many steps are interchangeable. Each column 
202-206, 302-306, 402-406, 502-506 of the Figures 2-5 sets out the acts of one of the 
participants, although in many cases the acts of the registrar and the authenticating 
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authority can be performed by the other. Where reference is made to the registrar and 
authenticating authority, such references shall include the acts of its employees, 
contractors, agents and systems such as programmed computers and databases. 

In step 208, a registrar 204 provides a registration form web page to a 
5 registrant 202 over the World Wide Web. Alternatively, the registration form web page 
may be provided by the authenticating authority 206. 

In step 210, the authenticating authority 206 provides public/private key 
pair generation software to the registrant 202. The authenticating authority 206 can 
provide the software at the registrant's 202 request, for example in response to a selection 

10 of a link on the registration form web page. Alternatively, the registrar 204 can provide 
the public/private key pair generation software. Maintaining the software on the 
registrant's 202 own computer provides an enhanced degree of security, since the 
registrant 202 is ensured that no one else possesses the private key. In some cases, the 
download of the public/private key pair generation software may be unnecessary, for 

15 example where the registrant 202 already possesses suitable software or already has a 
public/private key pair conforming to the specifications of the authenticating authority 
206 and/or registrar 204. It is noted that in some instances step 210 can precede step 208. 

In step 212, the registrant 202 generates a public/private key pair. The 
registrant 202 can employ the public/private key pair generation software downloaded in 

20 step 210, or can use conforming previously downloaded public/private key pair 
generation software. Alternatively, the registrant 202 can employ a previously generated 
public/private key pair that conforms to the specifications of the authenticating authority 
206 or registrar 204. Public/private key pair encryption is known to those skilled in the 
art of encryption and, in the interest of brevity, the details of such techniques will not be 

25 discussed. 

In step 214, the registrant 202 submits identifying information and the 
public key of the public/private key pair to the registrar 204. The identifying information 
can comprise any data of a predetermined format, but typically will include the 
registrant's 202 name and address. The address can be a postal address, e-mail address 
30 and/or some other address. For example, Universities may prefer e-mail addresses, while 
municipalities may prefer common street addresses. The identifying information can also 
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include a unique identifier, such as a social security number or other universally assigned 
identifier. 

In step 216, the registrar 204 receives the public key and identifying 
information. In step 218, the registrar 204 determines if the registrant 202 is eligible 
5 based on the submitted identifying information. For example, the registrar 204 can 
determine whether the submitted name matches a known address for the registrant 202. 
The registrar 204 can also determine whether the name and address match a known name 
and address for the registrant 202, for example from prior voting rolls, and/or telephone 
and address directories. The registrar 204 can also determine whether the name and 

10 address are duplicates of prior registered names and addresses. These determinations can 
detect attempts at voter fraud, although it may not be immediately apparent whether the 
current registrant 202 or the previous registrant is attempting to commit the fraud. Thus, 
the method of Figure 2 provides some level of security during the registration process. 

If the registrant 202 is not eligible, the registrar 204 rejects the registration 

15 in step 220, and can take further steps to identify the source of the attempted fraud. If the 
registrant 202 is eligible, the registrar 204 digitally signs the public key of the registrant 
202 in step 222. Digital signatures are known to those skilled in the art of encryption 
and, in the interest of brevity, will not be further discussed. 

In optional step 224, the registrar 204 can provide the digitally signed 

20 public key to the registrant 202 to serve as a receipt of the registration. (Optional steps 
are noted in Figures 2-5 by the parentheses surrounding the step label.) In step 226, the 
registrar 204 provides the digitally signed public key to the authenticating authority 206. 
It is noted that the order of steps 224 and 226 can be varied as desired. Typically, the 
registrar 204 will supply the authenticating authority 206 with a collection of all of the 

25 digitally signed public keys at the end of a registration period, but can also supply the 
digitally signed public keys on an individual basis as they are created. In step 228, the 
authenticating authority 206 receives the digitally signed public key from the registrar 
204. 

In step 230, the registrant 202 transmits an encrypted vote to the 
30 authenticating authority 206, which receives the encrypted vote from the registrant 202 in 
step 232. In some cases it is possible to perform steps 230 and 232 prior to step 228. 
However, the order depicted in Figure 2 can permit the authenticating authority 206 to 
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refuse to receive votes from registrants for which a digitally signed public key has not 
previously been received. 

In step 234, the authenticating authority 206 authenticates the source of the 
encrypted vote using the public key of the registrant 202 which was digitally signed by 
the registrar. The authentication validates the registrant's digital signature on the 
encrypted vote. Thus, the protocol authenticates the encrypted vote using the public key 
of the registrant 202, which itself was authenticated using the digital signature of the 
registrar 204. The authenticating authority 206 can authenticate each vote as the 
encrypted vote is received, or can delay authenticating the votes until a voting period ends 
and all the encrypted votes have been received. In step 236, the authenticating authority 
206 aggregates the encrypted votes, and decrypts the aggregation of encrypted votes in 
step 238. Decrypting is accomplished using the multiway protocol described in U.S. 

patent application Serial No. , filed March 24, 2000, and entitled 

"MULTIWAY ELECTION METHOD AND APPARATUS" (Atty. Docket No. 
32462.8001US). 

Post/Courier Registration 

Figure 3 shows a method of registration employing a courier such as a 
postal carrier or other common carrier. This method is generally more secure than the 
method of Figure 2, but can also be less convenient for the registrant. 

In step 308, a registrar 304 provides a registration form web page to a 
registrant over the World Wide Web, and in step 210 an authenticating authority 306 
provides public/private key pair generation software to the registrant. As generally 
discussed above, the order of steps 308 and 310, as well as the roles of the registrar 304 
and the authenticating authority 306 can vary to suit the particular circumstances. In step 
312, the registrant generates a public/private key pair, or employs an existing 
public/private key pair that conforms to the registrar's 304 or authenticating authority's 
306 specifications. In step 314, the registrant generates a hash of the public key. 
Hashing functions are generally known in the computer arts and will not be discussed 
further in the interest of brevity. 

In step 3 16, the registrant transfers the hash of the public key to a hash card 
317. The hash card 3 17 is formed on a blank of tangible medium capable of carrying the 
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hash of the public key, is well as a signature of the registrant. For example, the hash card 
317 can be formed on a blank of paper, poster-board, or card-board. The hash card 317 
can alternatively employ some destruction-resistant material, such as TYVEK (registered 
trademark of E.I. DuPont deNemours and Company). The registrant can create or obtain 
5 the hash card 317 in a variety of fashions. For example, the registrant can print a hash 
card 317 using a trusted printer on standard paper. The registrant can obtain a hash card 
blank from publicly available sources such as driver's license bureau, post office, shop 
and/or supermarket. The registrant can be sent a hash card blank through the mails. The 
hash card blank can contain some pre-printed material or can be printed entirely by the 

10 registrant. The hash of the public key can be transferred to the hash card blank through 
printing, writing, magnetic encoding or other form of imprinting. 

In step 318, the registrant applies the registrant's written signature to the 
hash card blank, thus providing a way to identify the registrant 302 at a later date. In step 
320, the registrant 302 transmits the completed hash card 317 to the registrar 304 via a 

15 third party courier, such as through the mails or by some other common carrier involving 
hand-delivery. The use of a third party courier provides convenience to the registrant 
302, but reduces the security of the overall system slightly. In step 322, the registrar 304 
receives the hash card 317 from the registrant 302. In step 324, the registrar 304 enters 
the hash of the public key into an electronic database, completing a first phase of the 

20 registration process. 

In an optional step 326, the registrar 304 can grant the registrant 302 access 
to a second phase of the registration process via a second phase web registration page. 
Alternatively, the registrant 302 can automatically have access to the second phase of the 
registration process. In step 328, the registrar 304 provides the second phase web page 

25 registration form to the registrant 302. In step 330, the registrant 302 submits the public 
key to the registrar 304 via the second phase web page registration form, the registrar 304 
receiving the public key from the registrant 302 in step 332. In step 334, the registrar 304 
determines whether the received hash of the public key corresponds to the received public 
key. The registrar 304 can create a hash of the received public key in making the 

30 determination. 

If the received public key does not correspond to the hash of the public key, 
the registrar 304 rejects the registration in step 336, and can take further steps to identify 
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the source of the attempted fraud. If the received public key does correspond to the hash 
of the public key, the registrar 304 digitally signs the public key of the registrant 302 in 
step 338. In step 340, the registrar 304 provides the digitally signed public key to the 
authenticating authority 306, which receives the digitally signed public key in step 342. 
5 Again, the registrar 304 may transfer the digitally signed keys in one or more groups. In 
optional step 344, the registrar 304 also provides the digitally signed public key to the 
registrant 302, as a receipt of the registration process. This permits the registrant 302 or a 
third party to later verify an election result. The registrant 302 receives the digitally 
signed public key in step 348. 

10 In step 348, the registrant 302 transmits an encrypted vote to the 

authenticating authority 306, that receives the encrypted vote in step 350. In step 352, the 
authenticating authority 306 authenticates the source of the encrypted vote using the 
public key of the registrant 302 which was digitally signed by the registrar. The 
authentication validates the registrant's digital signature on the encrypted vote. Thus, the 

15 protocol authenticates the encrypted vote using the public key of the registrant 302, which 
itself was authenticated using the digital signature of the registrar 304. The 
authenticating authority 306 can authenticate each vote as the encrypted vote is received, 
or can delay authenticating the votes until a voting period ends and all the encrypted 
votes have been received. In step 354, the authenticating authority 306 aggregates the 

20 encrypted votes, and decrypts the aggregation of encrypted votes in step 356. Decrypting 
is accomplished using the multiway protocol described in U.S. patent application Serial 

No. , filed March 24, 2000, and entitled "MULTIWAY ELECTION METHOD 

AND APPARATUS" (Atty. Docket No. 32462.800 1US). 

Trusted Registrar In Person Registration 
25 Figure 4 shows a method of registration employing the registrar 404 to 

produce the public/private key pair. If the registrant 402 trusts the registrar 404, this 

method provides more security than the method of Figure 3, but can be less convenient 

than the previously discussed methods. 

In step 408, the registrar 404 identifies the registrant 402 in-person. The 
30 registrar 404 may rely on a form of photo identification, for example a drivers license, 

passport or national identification card. The registrar 404 can also rely on a signature, 
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fingerprint, or the fact that the registrar 404 recognizes the registrant 402 as the individual 
who the registrant 402 claims to be. The registrar 404 may set up offices in a relevant 
geographic region to make the process convenient for the registrant 402. The registrar 
404 may use existing facilities such as post offices, schools, driver's license bureaus, 
5 shops and/or supermarkets. 

In step 408, the registrar 404 generates a public/private key pair for the 
identified registrant 402. The public/private key pair may be generated after the 
registrant 402 has been identified, or may be generated before the identification. In step 
412, the registrar 404 digitally signs the public key generated for the identified registrant 

10 402. In step 414, the registrar 404 provides the private key of the public/private key pair 
to the registrant 402. In optional step 416, the registrar 404 provides the digitally signed 
public key to the registrant 402 as a receipt of the registration process. As discussed 
above, the digitally signed public key can later be used to verify the integrity of the 
election process. The registrar 404 can give the registrant 402 the private key and 

15 digitally signed public key on removable computer-readable media or via some secure 
channel. This helps ensure that the private key remains private. In step 418, the 
registrant 402 receives the removable media containing the private key and the digitally 
signed public key. 

In step 420, the registrar 404 provides the digitally signed public key to the 
20 authenticating authority 406, which receives the digitally signed public key in step 422. 
In step 424, the registrant 402 transmits an encrypted vote to the authenticating authority 
406, which receives the encrypted vote in step 426. In step 428, the authenticating 
authority 406 authenticates the source of the encrypted vote using the public key of the 
registrant 402 which was digitally signed by the registrar. The authentication validates 
25 the registrant's digital signature on the encrypted vote. Thus, the protocol authenticates 
the encrypted vote using the public key of the registrant 402, which itself was 
authenticated using the digital signature of the registrar 404. The authenticating authority 
406 can authenticate each vote as the encrypted vote is received, or can delay 
authenticating the votes until a voting period ends and all the encrypted votes have been 
30 received. In step 430, the authenticating authority 406 aggregates the encrypted votes, 
and decrypts the aggregation of encrypted votes in step 432. Decrypting is accomplished 
using the multiway protocol described in U.S. patent application Serial No. 
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, filed March 24, 2000, and entitled "MULTIWAY ELECTION METHOD AND 

APPARATUS" (Atty. Docket No. 32462.8001US). 



In Private, In Person Registration 

Figure 5 shows a method of registration employing in-person identification 
5 and a registrant 502 generated public/private key pair. This is the most secure of the 
illustrated methods, but comes at the cost of convenience. 

In step 508, the registrar 404 provides a web page registration form to the 
registrant 502. In optional step 510, the registrar 404 prompts the registrant 502 to create 
a hash card 519. In step 512, the registrar 404 can provide public/private key pair 

10 generation software to the registrant 502 if the registrant 502 does not already possess 
such software or a suitable public/private key pair. In step 514, the registrant 502 
generates a public/private key pair using the key pair generation software. As discussed 
above, the order of the steps and the roles of the registrar 504 and the authenticating 
authority 506 can vary. In step 5 16, the registrant 502 produces a hash of the public key. 

15 In step 518, the registrant 502 imprints the hash of the public key on the hash card blank, 
as explained above in reference to the method of Figure 3. 

In step 520, the registrar 404 prompts the registrant 502 to transmit the 
public key. In step 522 the registrant 502 electronically transmits the public key, the 
registrar 404 receiving the public key in step 524. It is noted that steps 520, 522 and 524 

20 can occur before steps 516 and 518. In step 526, the registrar 404 identifies the registrant 
502 in-person, employing similar means as those describe above in reference to the 
method of Figure 4. After the registrar 404 identifies the registrant 502, the registrant 
502 signs the hash card 519 in writing and submits the hash card 519 to the registrar 404 
in step 528. The registrar 404 receives the signed hash card 519 in step 530 and 

25 determines in step 532 whether the hash on the hash card 519 corresponds to the public 
key electronically submitted by the registrant 502. 

In step 534, the registrar 404 rejects the registration if the hash of the public 
key does not correspond to the electronically submitted public key. In step 536, the 
registrar 404 identifies the registrant 502 as eligible if the hash of the public key 

30 corresponds to the electronically submitted public key. In optional step 538, the registrar 
404 transmits an officially stamped or otherwise acknowledged copy of the hash card to 
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the registrant 502 as proof of the registration process, the registrant 502 receiving the 
copy of the hash card in step 540. In step 542, the registrar 404 digitally signs the public 
key of the eligible registrant 502. In optional step 544, the registrar 404 transmits the 
digitally signed public key to the registrant 502 as a further receipt, which the registrant 
5 502 receives in step 546. It is noted that steps 542, 544 and 546 can occur before steps 
538 and 540. 

In step 548, the registrar 404 transmits the digitally signed public key to the 
authenticating authority 506, which is received by the authenticating authority 506 in step 
550. In step 552, the registrant 502 transmits an encrypted vote to the authenticating 

10 authority 506 which receives the encrypted vote in step 554. In step 556, the 
authenticating authority 506 authenticates the source of the encrypted vote using the 
public key of the registrant 502 which was digitally signed by the registrar. The 
authentication validates the registrant's digital signature on the encrypted vote. Thus, the 
protocol authenticates the encrypted vote using the public key of the registrant 502, which 

15 itself was authenticated using the digital signature of the registrar 504. The 
authenticating authority 506 can authenticate each vote as the encrypted vote is received, 
or can delay authenticating the votes until a voting period ends and all the encrypted 
votes have been received. In step 558, the authenticating authority 506 aggregates the 
encrypted votes, and decrypts the aggregation of encrypted votes in step 560. Decrypting 

20 is accomplished using the multiway protocol described in U.S. patent application Serial 

No. , filed March 24, 2000, and entitled "MULTIWAY ELECTION METHOD 

AND APPARATUS" (Atty. Docket No. 32462.800 1US). 

Similar subject matter is described in commonly assigned U.S. patent 
application Serials Nos. , filed March 24, 2000, and entitled 

25 "MULTIWAY ELECTION METHOD AND APPARATUS" (Atty. Docket 

No. 32462.8001US); and , filed March 24, 2000, and entitled 

"ELECTRONIC VOTING SCHEME EMPLOYING PERMANENT BALLOT 
STORAGE" (Atty. Docket No. 32462-8003US); and in commonly assigned provisional 
patent application Serial Nos. 60/126,080, filed March 25, 1999; and 60/149,621, filed 

30 August 16, 1999. 

Although specific embodiments of and examples for practicing the 
invention are described herein for illustrative purposes, various equivalent modifications 
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can be made without departing from the spirit and scope of the invention, as will be 
recognized by those skilled in the relevant art. The teachings provided herein of the 
invention can be applied to other registration systems, not necessarily the exemplary voter 
registration protocols and structures generally described above. 

5 The various embodiments described above can be combined to provide 

further embodiments. All of the above U.S. patents, patent applications and publications 
referred to in this specification are incorporated by reference. Aspects of the invention 
can be modified, if necessary, to employ systems, circuits and concepts of the various 
patents, applications and publications to provide yet further embodiments of the 

10 invention. 

These and other changes can be made to the invention in light of the above- 
detailed description. In general, in the following claims, the terms used should not be 
construed to limit the invention to the specific embodiments disclosed in the specification 
and the claims, but should be construed to include all registration that operated in 
15 accordance with the claims to register registrants. Accordingly, the invention is not 
limited by the disclosure, but instead its scope is to be determined entirely by the 
following claims. 
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